Date: Mon, 27 Oct 2003 00:31:46 -0700 (MST) From: Brett Glass <brett@lariat.org> To: security@freebsd.org Subject: Best way to filter "Nachi pings"? Message-ID: <200310270731.AAA23485@lariat.org>
next in thread | raw e-mail | index | archive | help
We're being ping-flooded by the Nachi worm, which probes subnets for systems to attack by sending 92-byte ping packets. Unfortunately, IPFW doesn't seem to have the ability to filter packets by length. Assuming that I stick with IPFW, what's the best way to stem the tide? --Brett Glass
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200310270731.AAA23485>